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Amendment "C" dated June 22, 2007 

Reply to Non-Final Office Action mailed March 28, 2008 

AMENDMENTS TO THE CLAIMS 

This listing of claims replaces all prior versions, and listings, of claims in the application: 
Listing of Claims; 

1. (Previously Presented) In a network environment that includes a plurality of 
computing systems capable of communicating using electronic messaging, a method for a source 
computing system constructing an electronic message, the method comprising the following: 

an act of designating at least one destination address in the electronic message, the 
destination address corresponding to one or more recipient computing devices; 

an act of including a first security token in a header portion of the electronic message, 
wherein the electronic message is a Simple Object Access Protocol (SOAP) envelope in which 
the header portion is the header portion of the SOAP envelope, the first security token being at 
least derived fi-om a first credential of a first credential type; and 

an act of including a second security token in the header portion of the electronic 
message, the second security token being at least derived fi-om a second credential of a second 
credential type. 

2. (Original) The method in accordance with Claim 1, wherein the first security token is 
biometric data. 

3. (Original) The method in accordance with Claim 1 , fiirther comprising the following: 

an act of including an encryption manifest in the header portion to thereby designate | 
portions of a body portion of the electronic message that are encrypted. | 

4. (Original) The method in accordance with Claim 1 , fiirther comprising the following: 
an act of transmitting the electronic message with the first security token and the second 

security token in the header portion to the one or more recipient computing devices. 

5. (Original) The method in accordance with Claim 1, wherein the first security token is : 

the first credential. 

1 
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6. (Original) The method in accordance with Claim 1, wherein the first security token is 
a first signature that was generated using the first credential. 

7. (Original) The method in accordance with Claim 6, fiirther comprising the following: 
an act of including the first credential in the electronic message. 

8. (Original) The method in accordance with Claim 1, wherein the second security 
token is the second credential. 

9. (Original) The method in accordance with Claim 1, wherein the second security 
token is a second signature that was generated using the second credential. 

10. (Original) The method in accordance with Claim 9, fiirther comprising the following: 
an act of including the second credential in the electronic message. 

11. (Original) The method in accordance with Claim 1, wherein the at least one 
destination address corresponds to at least a first and a second recipient computing system, the 
first computing system using the first credential to identify the source computing system, and the 
second computing system using the second credential to identify the source computing system. 

12. (Original) The method in accordance with Claim 11, fiirther comprising the 
following: 

an act of determining that the first recipient computing system uses the first credential to 
identify the source computing system; and 

an act of determining that the second recipient computing system uses the second 
credential to identify the source computing system. 

13. (Original) The method in accordance with Claim 1, wherein the at least one 

destination address corresponds to at least a first recipient computing system that uses both of the 
first credential and the second credential to identify the source computing system. 
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14. (Original) The method in accordance with Claim 13, further comprising the 

following: 

an act of determining that the first recipient computing system uses both of the first 
credential and the second credential to identify the source computing system. 

15. (Original) The method in accordance with Claim 1, wherein the at least one 
destination address corresponds to at least a first recipient computing system that uses the first 
credential and the second credential to identify the source computing system, the electronic 
message also traversing through an intermediary computing system that uses the second 
credential to identify the source computing system. 

16. (Original) The method in accordance with Claim 15, further comprising the 
following: 

an act of determining that the first recipient computing system uses the first credential to 
identify the source computing system; and 

an act of determining that the intermediary computing system uses the second credential 
to identify the source computing system. 

1 7. (Original) The method in accordance with Claim 1 5, further comprising: | 
an act of designating an intermediary address that corresponds to the intermediary 

computing device. 

1 8. (Original) The method in accordance with Claim 1, further comprising \ 
an act of encoding the first security token; 

an act of including, in the header portion, an identification of an encoding format of the 
first security token; and \ 
an act of including, in tiie header portion, an identification of a type of tiie security token. i 

19. (Original) The method in accordance with Claim 18, wherein the security token 
comprises a credential. 

I 
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20. (Original) The method in accordance with Claim 1, wherein the first security token is 
a signature generated by a user, the method further comprising: 

an act of generating a reference indicating where a credential associated with the user 
may be found; 

an act of including the reference in the header portion of the electronic message. 

21. (Cancelled) 

22. (Original) The method in accordance with Claim 1 , wherein the electronic message is 
a HyperText Transport Protocol (HTTP) message, and wherein the header portion is a header 
portion of the HTTP message. 
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23. (Previously Presented) A computer program product for use in a network 
environment that includes a plurality of computing systems capable of communicating using 
electronic messaging, the computer program product for implementing a method for a source 
computing system constructing an electronic message, the computer program product comprising 
one or more computer-readable physical storage media have thereon the following: 

computer-executable instructions for designating at least one destination address in the 
electronic message, the destination address corresponding to one or more recipient computing 
devices; 

computer-executable instructions for including a first security token in a header portion 
of the electronic message, wherein the electronic message is a Simple Object Access Protocol 
(SOAP) envelope in which the header portion is the header portion of the SOAP envelope, the 
first security token being at least derived from a first credential of a first credential type; and 

computer-executable instructions for including a second security token in the header 
portion of the electronic message, the second security token being at least derived from a second 
credential of a second credential type. 

24. (Cancelled) 

25. (Original) The computer program product in accordance with Claim 23, wherein the 
one or more computer-readable media fiirther have thereon the following: 

computer-executable instructions for determining that a first recipient computing system 
uses the first credential to identify the source computing system; and 

computer-executable instructions for determining that a second recipient computing 
system uses the second credential to identify the source computing system. 

26. (Original) The computer program product in accordance with Claim 23, wherein the 
one or more computer-readable media fiirther have thereon the following: 

computer-executable instructions for determining that a first recipient computing system 
uses both of the first credential and the second credential to identify the source computing 

system. 
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27. (Original) The computer program product in accordance with Claim 23, wherein the 
one or more computer-readable media further have thereon the following: 

computer-executable instructions for determining that a first recipient computing system 
uses the first credential to identify the source computing system; and 

computer-executable instructions for determining that an intermediary computing system 
uses the second credential to identify the source computing system. 



28-36 (Cancelled) 
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37. (Previously Presented) A computer program product for use in a network 
environment that includes a plurality of computing systems capable of communicating using 
electronic messaging, a method for identifying a source computing system of an electronic 
message, the computer program product comprising one or more physical computer-readable 
storage media having stored thereon the following: 

computer-executable instructions for detecting the receipt of an electronic message, 
wherein the electronic message is a Simple Object Access Protocol (SOAP) envelope, and 
wherein the credential is included in a header portion of the SOAP envelope; 

computer-executable instructions for reading a credential from the electronic message; 

computer-executable instructions for determining how to handle the credential and the 
electronic message based on a position of the credential within a logical hierarchical tree of 
credentials. 

computer-executable instructions for handling the credential and the electronic message 
as determined. 

38. (Cancelled) 

39. (Original) A computer program product in accordance with Claim 37, wherein the 
computer-executable instructions for determining how to handle the credential and the electronic 
message comprise the following: 

computer-executable instructions for consulting handling rules of at least one ancestral 
credential in the logical hierarchical tree; 

computer-executable instructions for consulting extended handling rules specific to the 
credential included in the electronic message; and 

computer-executable instruction for determining handling rules for the credential 
included in the electronic message by using the handling rules for the at least one ancestral 
credential as well as the extended handling rules specific to the credential included in the 
electronic message. 

40. (Original) The computer program product in accordance with Claim 37, wherein the 
credential includes biometric data. 
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41. (Cancelled) 

42. (Original) The computer program product in accordance with Claim 37, wherein the 
electronic message is a HyperText Transport Protocol (HTTP) message, and wherein the 
credential is included in a header portion of the HTTP message. 

43. (Cancelled) 
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44. (Previously Presented) In a network environment that includes a plurality of 
computing systems capable of communicating using electronic messaging, a method for a source 
computing system constructing an electronic message, the method comprising the following: 

an act of encoding a credential that identifies the source computing device; 

an act of including the credential in a header portion of an electronic message, wherein 
the electronic message is a Simple Object Access Protocol (SOAP) envelope, and wherein the 
header portion is a header portion of the SOAP envelope; and 

an act of including, in the header portion, information indicative of a type of the 
credential. 

45. (Original) A method in accordance with Claim 44, wherein the information 
indicative of a type of the credential comprises a human-readable expression of the type of the 
credential. 

46. (Original) A method in accordance with Claim 44, wherein the information 
indicative of a type of the credential comprises information that is not a human-readable 
expression of the type of the credential, but nonetheless is information fi-om which the type of 
credential may be derived. 

47. (Original) A method in accordance with Claim 44, further comprising the following: 
an act of including in the header portion, an identification of an encoding format of the 

credential. 

48. (Original) A method in accordance with Claim 44, wherein an identification of an 
encoding format of the credential is not included in the header portion thereby indicating that a 
default encoding format has been applied. 

49. (Original) The method in accordance with Claim 44, fiirther comprising the 
following: 

an act of including an encryption manifest in the header portion to thereby designate 
portions of a body portion of the electronic message that are encrypted. 
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50. (Original) The method in accordance with Claim 44, wherein the credential includes 
biometric data. 

51. (Cancelled) 

52. (Original) The method in accordance with Claim 44, wherein the electronic message 
is a HyperText Transport Protocol (HTTP) message, and wherein the header portion is a header 
portion of the HTTP message. 

53. (Original) A method in accordance with Claim 44, wherein the credential is a license. 

54. (Original) A method in accordance with Claim 53, wherein the credential is in a 
binary format, wherein the act of including, in the header portion, an identification of a type of 
the credential comprises an act of including, in the header portion, an indication that the 
credential has the binary format. 

55. (Original) A method in accordance with Claim 44, wherein the credential is in a 
binary format, wherein the act of including, in the header portion, an identification of a type of 
the credential comprises an act of including, in the header portion, an indication that the 
credential has the binary format. 
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56. (Currently Amended) A computer program product for use in a network 
environment that includes a plurality of computing systems capable of communicating using 
electronic messaging, the computer program product for implementing a method for a source 
computing system constructing an electronic message, the computer program product comprising 
one or more physical computer-readable storage media having stored thereon the following: 

a first software module that, when executed by one or more processors, is adapted to 
encode a credential that identifies the source computing device, wherein the credential is a 
license; 

a second software module that, when executed by one ei-or more processors, is adapted 
to include the credential in a header portion of the electronic messag e, wherein the electronic 
message is a Simple Object Access Protocol (SOAP) envelope, and wherein the header portion is 
a header portion of the SOAP envelope : 

a third software module that, when executed by one ef-or more processors, is adapted to 
include, in the header portion, an identification of an encoding format of the credential; and 

a fourth software module that, when executed by one ef-or more processors, is adapted to 
include, in the header portion, an identification of a type of the credential. 

57. (Cancelled) 
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58. (Previously Presented) In a network environment that includes a plurality of 
computing systems capable of communicating using electronic messaging, a method for a 
source computing system constructing an electronic message, the method comprising the 
following: 

an act of including an electronic signature in a header portion of an electronic message, 
wherein the electronic message is a Simple Object Access Protocol (SOAP) envelope, and 
wherein the header portion is a header portion of the SOAP envelope, the electronic signature 
generated by a user; 

an act of generating a reference indicating where a credential associated with the 
electronic signature may be found; 

an act of including the reference in the header portion of the electronic message. 

59. (Original) The method in accordance with Claim 58, further comprising the 
following: 

an act of including an encryption manifest in the header portion to thereby designate 
portions of a body portion of the electronic message that are encrypted. 

60. (Original) A method in accordance with Claim 58, wherein the reference indicates 
that the associated credential may be found at a location that is internal to the electronic message. 

61. (Original) A method in accordance with Claim 58, wherein the reference indicates 
that the associated credential may be found at a location that is external to the electronic 

message. 

62. (Original) The method in accordance with Claim 58, wherein the credential includes 
biometric data. 

63. (Cancelled) 
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64. (Original) The method in accordance with Claim 58, wherein the electronic message 
is a HyperText Transport Protocol (HTTP) message, and wherein the header portion is a header 
portion of the HTTP message. 

65. (Previously Presented) In a network environment that includes a plurality of 
computing systems capable of communicating using electronic messaging, a method for a 
recipient computing system to verify the identity of a sender of an electronic message, the 
method comprising the following: 

an act of receiving the electronic message; 

an act of reading an electronic signature from a header portion of the electronic message, 
the electronic signature generated by a user, wherein the electronic message is a Simple Object 
Access Protocol (SOAP) envelope, and wherein the header portion is a header portion of the 
SOAP envelope; 

an act of reading a reference from the header portion, the reference indicating where a 
credential associated with the user may be found; 

an act of using the reference to find the credential; and 

an act of determining if the credential corresponds with the elecfronic signature. 

66. (Original) A method in accordance with Claim 65, wherein the reference indicates 
that the associated credential may be found at a location that is internal to the elecfronic message. 

67. (Original) A method in accordance with Claim 65, wherein the reference indicates 
that the associated credential may be found at a location that is extemal to the electronic 
message. 
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68. (Previously Presented) A computer program product for use in a network 
environment that includes a plurality of computing systems capable of communicating using 
electronic messaging, the computer program product for implementing a method for a recipient 
computing system to verify the identity of a sender of an electronic message, the computer 
program product comprising one or more physical computer-readable storage media having 
thereon the following: 

computer-executable instructions for detecting the receipt of the electronic message; 

computer-executable instructions for reading an electronic signature from a header 
portion of the electronic message, the electronic signature generated by a user, wherein the 
electronic message is a Simple Object Access Protocol (SOAP) envelope, and wherein the 
header portion is a header portion of the SOAP envelope; 

computer-executable instructions for reading a reference from the header portion, the 
reference indicating where a credential associated with the user may be found; 

computer-executable instructions for using the reference to find the credential; and 

computer-executable instructions for determining if the credential corresponds with the 
electronic signature. 

69. (Cancelled) 
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70. (Original) In a network environment that includes a plurality of computing systems 
capable of communicating using electronic messaging, a method for a source computing system 
constructing a Simple Object Access Protocol envelope, the method comprising the following: 

an act of designating at least one destination address in the SOAP envelope, the 
destination address corresponding to one or more recipient computing devices; and 

an act of including a first security token in a header portion of the SOAP envelope, the 
first security token being at least derived fi-om a first credential of a first credential type. 

71. (Original) The method in accordance with Claim 70, further comprising the 
following: 

an act of including a second security token in the header portion of the SOAP envelope, 
the second security token being at least derived fi-om a second credential of a second credential 
type. 
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